Tag: india
-
APT36 Deploys Python-Based ELF Malware in Targeted Attacks on Indian Government Agencies
Pakistan-linked cyberespionage group APT36 (Transparent Tribe) has escalated its campaign against Indian government institutions with the deployment of sophisticated Python-based ELF malware specifically designed to compromise Linux-based BOSS operating environments, according to research published by CYFIRMA. The threat actor, historically focused on Windows systems, has demonstrated expanded technical maturity through multi-platform tooling that bypasses conventional…
-
APT36 Deploys Python-Based ELF Malware in Targeted Attacks on Indian Government Agencies
Pakistan-linked cyberespionage group APT36 (Transparent Tribe) has escalated its campaign against Indian government institutions with the deployment of sophisticated Python-based ELF malware specifically designed to compromise Linux-based BOSS operating environments, according to research published by CYFIRMA. The threat actor, historically focused on Windows systems, has demonstrated expanded technical maturity through multi-platform tooling that bypasses conventional…
-
ISMG Editors: India’s Data Protection Rules Get More Teeth
Also: Prompt Injection Complicates Digital Forensics, Why AI Seems So Deceptive. In this week’s ISMG Editors’ Panel, four editors unpacked India’s new data protection rules, the digital forensic implications of prompt injection attacks and the reasons why artificial intelligence tools so often seem to display deceptive behavior. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/ismg-editors-indias-data-protection-rules-get-more-teeth-a-30163
-
Elephant Group Launches Defense Sector Attacks Using MSBuild-Delivered Python Backdoor
An India-aligned advanced persistent threat group known as Dropping Elephant has launched sophisticated cyberattacks against Pakistan’s defense sector using a newly developed Python-based backdoor delivered through an MSBuild dropper. The campaign demonstrates significant evolution in the threat actor’s tactics, techniques, and procedures, combining living-off-the-land binaries with custom malware to evade detection and establish persistent access…
-
‘Scamming became the new farming’: inside India’s cybercrime villages podcast
How did an obscure district in a neglected state become India’s byword for digital deceit?By Snigdha Poonam. Read by Mikhail Sen <a href=”https://www.theguardian.com/news/audio/2025/nov/24/scamming-became-the-new-farming-inside-indias-cybercrime-villages-podcast”>Continue reading… First seen on theguardian.com Jump to article: www.theguardian.com/news/audio/2025/nov/24/scamming-became-the-new-farming-inside-indias-cybercrime-villages-podcast
-
CERT-In Warns of Critical Asus Router Flaw Exposing Millions in India
According to the Indian Computer Emergency Response Team (CERT-In), thousands of households, small offices, and service providers across the country may already be at risk due to a newly uncovered authentication bypass flaw tracked as CVE-2025-59367. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/cert-in-warning-asus-router-cve-2025-59367/
-
50,000 CCTVs Hacked in India: Intimate Hospital Footage Sold Online
A disturbing case of hacking CCTV systems in India has exposed a widespread cybercrime racket through which intimate videos from a maternity ward were stolen and sold online. Police in Gujarat state say the discovery has raised concern for surveillance practices in a country where cameras are routinely placed across public and private spaces. First…
-
Understanding India’s Digital Personal Data Potection Act 2025: A Complete Overview
India’s Digital Personal Data Protection Act (DPDP), 2023, signaled the country’s commitment to building a modern and globally aligned privacy framework. But as with any legislation, the true operational impact becomes clear only when detailed rules are published. With the release of the Digital Personal Data Protection Rules (DPDP), 2025, organisations now have a clear,……
-
India Outlines Its Global Digital Future and Cybersecurity Vision at WTDC-25
At the High-Level Segment of the World Telecommunication Development Conference (WTDC-25), India presented a vision for a sustainable and inclusive global digital future, noting collective responsibility in strengthening cybersecurity and expanding equitable digital access. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/india-global-digital-future/
-
Alice Blue Partners With AccuKnox For Regulatory Compliance
AccuKnox, a global leader in Zero Trust Cloud-Native Application Protection Platforms(CNAPP), today announced its partnership with Alice Blue India, a prominent brokerage andfinancial services firm, to strengthen its security and compliance frameworks across on-premand cloud workloads. The partnership was executed through channel partner Airowire. Leveraging AccuKnox’s security capabilities, Alice Blue aims to achieve enhancedvisibility, automated…
-
Alice Blue Partners With AccuKnox For Regulatory Compliance
AccuKnox, a global leader in Zero Trust Cloud-Native Application Protection Platforms(CNAPP), today announced its partnership with Alice Blue India, a prominent brokerage andfinancial services firm, to strengthen its security and compliance frameworks across on-premand cloud workloads. The partnership was executed through channel partner Airowire. Leveraging AccuKnox’s security capabilities, Alice Blue aims to achieve enhancedvisibility, automated…
-
India’s new data privacy rules turn privacy compliance into an engineering challenge
Tags: ai, automation, backup, cloud, compliance, data, encryption, india, monitoring, nist, privacy, saas, toolArchitectural changes required: Analysts point out that meeting erasure deadlines and purpose-based storage limits will require deeper architectural changes.”Architectural changes include deploying encryption, masking, and tokenization for secure storage, implementing consent managers, and integrating erasure standards like NIST 800-88 or IEEE 2883 for IT asset sanitization,” Mahapatra said. “Cloud-native architectures with granular data classification and…
-
Chinese Tech Firm Leak Reportedly Exposes State Linked Hacking
A massive data leak reportedly at Chinese firm Knownsec (Chuangyu) exposed 12,000 files detailing state-backed ‘cyber weapons’ and spying on over 20 countries. See the details, including 95GB of stolen Indian immigration data. First seen on hackread.com Jump to article: hackread.com/chinese-tech-firm-leak-state-linked-hacking/
-
Chinese Tech Firm Leak Reportedly Exposes State Linked Hacking
A massive data leak reportedly at Chinese firm Knownsec (Chuangyu) exposed 12,000 files detailing state-backed ‘cyber weapons’ and spying on over 20 countries. See the details, including 95GB of stolen Indian immigration data. First seen on hackread.com Jump to article: hackread.com/chinese-tech-firm-leak-state-linked-hacking/
-
OTsec India Organizers Share Tips on OT Security
OTsec India Steering Committee Discuss Cyberthreats, Compliance and Innovation. Featuring some of the most prominent voices in Indian operational technology cybersecurity, the steering committee for the inaugural OTsec India Summit shares insights on a range of topics including OT threats, regulatory imperatives and the latest innovations. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/otsec-india-organizers-share-tips-on-ot-security-a-29953
-
India and Israel Sign MoU to Strengthen Defense and Cybersecurity Cooperation
India and Israel have taken a decisive step toward deepening their strategic partnership with the signing of a Memorandum of Understanding (MoU) on Defense and Cybersecurity Cooperation. The agreement was formalized during the 17th Joint Working Group (JWG) meeting held in Tel Aviv and co-chaired by India’s Defense Secretary Rajesh Kumar Singh and Israel’s Director…
-
India and Israel Sign MoU to Strengthen Defense and Cybersecurity Cooperation
India and Israel have taken a decisive step toward deepening their strategic partnership with the signing of a Memorandum of Understanding (MoU) on Defense and Cybersecurity Cooperation. The agreement was formalized during the 17th Joint Working Group (JWG) meeting held in Tel Aviv and co-chaired by India’s Defense Secretary Rajesh Kumar Singh and Israel’s Director…
-
Cybersecurity Snapshot: Top Guidance for Improving AI Risk Management, Governance and Readiness
Tags: access, ai, api, attack, awareness, breach, business, ceo, cloud, compliance, computer, control, corporate, crime, cryptography, cyber, cybersecurity, data, data-breach, encryption, exploit, finance, framework, germany, google, governance, guide, hacking, ibm, identity, india, infrastructure, intelligence, jobs, law, leak, metric, microsoft, network, penetration-testing, privacy, risk, risk-management, scam, security-incident, skills, strategy, technology, threat, tool, training, vulnerability, vulnerability-managementMany organizations are playing catch-up in key AI security policy areas, such as usage governance, risk oversight, data protection, and staff training. In this Cybersecurity Snapshot special edition, we round up recent guidance on preparing for, managing and governing AI cyber risks. Key takeaways Most organizations’ AI adoption is dangerously outpacing their security strategies and…
-
Cybersecurity Snapshot: Top Guidance for Improving AI Risk Management, Governance and Readiness
Tags: access, ai, api, attack, awareness, breach, business, ceo, cloud, compliance, computer, control, corporate, crime, cryptography, cyber, cybersecurity, data, data-breach, encryption, exploit, finance, framework, germany, google, governance, guide, hacking, ibm, identity, india, infrastructure, intelligence, jobs, law, leak, metric, microsoft, network, penetration-testing, privacy, risk, risk-management, scam, security-incident, skills, strategy, technology, threat, tool, training, vulnerability, vulnerability-managementMany organizations are playing catch-up in key AI security policy areas, such as usage governance, risk oversight, data protection, and staff training. In this Cybersecurity Snapshot special edition, we round up recent guidance on preparing for, managing and governing AI cyber risks. Key takeaways Most organizations’ AI adoption is dangerously outpacing their security strategies and…
-
Transnational Organized Crime Gang Steals $1 Million from Ontario Couple
Today my LinkedIn feed and Google News filter is showing me several stories that illustrate how we are failing to stop online scammers from stealing from our elderly. It starts with the headlines. CTVNews: Ontario seniors GIVE AWAY MORE THAN $1 MILLION to scammers.CTVNews: Ontario couple LOSES MORE THAN $1 MILLION DOLLARS to fraud.Toronto Only:…
-
India’s Cyber Security Skyrockets to $20 Billion, Fueled by 400+ Startups: CERT-In DG
India’s cybersecurity landscape is witnessing rapid growth, with the Indian Computer Emergency Response Team (CERT-In) playing a central role in driving this transformation. According to Dr. Sanjay Bahl, Director General of CERT-In under the Ministry of Electronics and Information Technology (MeitY), the nation’s cybersecurity ecosystem has evolved into a $20 billion industry, supported by over 400 startups and 6.5 lakh professionals. First seen on thecyberexpress.com…
-
India’s Cyber Security Skyrockets to $20 Billion, Fueled by 400+ Startups: CERT-In DG
India’s cybersecurity landscape is witnessing rapid growth, with the Indian Computer Emergency Response Team (CERT-In) playing a central role in driving this transformation. According to Dr. Sanjay Bahl, Director General of CERT-In under the Ministry of Electronics and Information Technology (MeitY), the nation’s cybersecurity ecosystem has evolved into a $20 billion industry, supported by over 400 startups and 6.5 lakh professionals. First seen on thecyberexpress.com…
-
Breach Roundup: Hackers Probe Canada’s Critical Infrastructure
Also: F5 Revenue Dips, Swedish Utility Operator Breached. This week, critical infrastructure breaches in Canada, a Swedish grid operator breached, an Australian guilty of selling cyber exploits, Gmail wasn’t breached, F5 projected a revenue dip, PhantomRaven targeted developers, a Pakistan-linked actor targeted India and Dentsu confirmed a data breach. First seen on govinfosecurity.com Jump to…
-
Cryptohack Roundup: Allegations Involving Melania Memecoins
Also: LastPass Warns of Phishing Campaign, Trump’s New CTFC Head Pick. Every week, Information Security Media Group rounds up cybersecurity incidents in digital assets. This week, Meteora CEO faced fraud allegations, LastPass warned of a phishing campaign, Trump taps crypto lawyer to lead CFTC, Mt. Gox delayed creditor repayments again and an Indian court blocked…
-
Cryptohack Roundup: Allegations Involving Melania Memecoins
Also: LastPass Warns of Phishing Campaign, Trump’s New CTFC Head Pick. Every week, Information Security Media Group rounds up cybersecurity incidents in digital assets. This week, Meteora CEO faced fraud allegations, LastPass warned of a phishing campaign, Trump taps crypto lawyer to lead CFTC, Mt. Gox delayed creditor repayments again and an Indian court blocked…
-
Cryptohack Roundup: Allegations Involving Melania Memecoins
Also: LastPass Warns of Phishing Campaign, Trump’s New CTFC Head Pick. Every week, Information Security Media Group rounds up cybersecurity incidents in digital assets. This week, Meteora CEO faced fraud allegations, LastPass warned of a phishing campaign, Trump taps crypto lawyer to lead CFTC, Mt. Gox delayed creditor repayments again and an Indian court blocked…
-
‘Scamming became the new farming’: inside India’s cybercrime villages
How did an obscure district in a neglected state become India’s byword for digital deceit?On the surface, the town of Jamtara appeared no different from neighbouring districts. But, if you knew where to look, there were startling differences. In the middle of spartan villages were houses of imposing size and unusual opulence. Millions of Indians…
-
Massive Tata Motors Data Leak Exposes 70+ TB of Sensitive Information
Tata Motors, India’s largest automaker and a major player in the global automotive industry, suffered a catastrophic data exposure that revealed over 70 terabytes of sensitive information through multiple security failures. The breaches, discovered in 2023, involved exposed AWS credentials on public-facing websites, encrypted keys that were easily decrypted, a Tableau backdoor with zero authentication…